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5 m^mmmmmimmuu^m 

10 £ Internet ±£ff, K+W^SJgHJW^ ft^«t#«I#Bfc. 

20 umFffiiEnicW&Mo a&a&W cited> copicat> accopi> 

TALISMAN^ IMPRIMATUR WftflS iXJTWftrtWW/Rtt^ JI70F 
^^Wj^7^6tJ^^n D n, iSWlBM^WCiyptolqpeg 
Tjt, InterTrust^wJ^DigiBox^, Breaker &7fc&^I #J SoftSeal 
Internet ±»rt#W)Rtt«^«I$MJiXt^ rt*W®gW^W^f«lffi 

Mf Internet ±rtMWA k fl<rtfifH jfiflj. 

^ Internet ±rt«tW»A.ttWRIfi«S»^tt. 
30 SKCC(Secure 



i 



Kernel-based Content-Control Dual Authenticated Model SrF:£^:|*|^#J 

ffl2*«#JI&H. »4W#WJi»c±«l»K^ffl. 
B 3A-3C %to*m#b$mVt*!&Xftto&. 

fflsft/i^Mffli: JS^to&AJW. 

S 7 * A*T^rtttWrt«-S#J5Rfiy,fiE^iSL SKCC flMM. 

s 8A mm sd a**^ w skcc ^n%sa. 

fcffl i 100 tr^^^rt*#» ioi, 

101 fflj± Web (102) Ifthttp (i$#nntp, ftp, smtp) fltf&f#&& 
JBAE^i^JK^flM&l** 100 W^SEttiUE, ffi^feJfcfcIR#l& 104 
tt»J*3WRTttftR. Kftflg&# 104 %^RRAdWqri£^E«|j9K«jf # 
204 *$^ n n n |*jW^ 101 &mWf$fLt&ltiLfflMfo 

^Mfi^, Bfr±rt££ i/o ift#±WM, H6xmn*ft*Wart8fi<j 

*8£f$B&ailLL*^toM. Mtflil Netscape Navigator 202113® 
# Plugin 204 WiftW^W#f^»^5*xj#M55riHl»*» f 



m^^o £&fnto*^#tttt#*gEffl# 2 oo z±&mm^mm 

201 , Wfe%t& 201 £±«Mfi#jKtfc 202,'&tf;jH#$/& Internet MM IVM 
203 o PI JK&ft#Mft£A^ft#Kl&ntt»#. &#«^«F^*«» 

I/O (Cache), fi**» (frE^ M^O^^^iJ) 

«ffl4t, «#**«f»ftfi]Sf^»^. -**^ , ffl3±ffl/ , lfM400 
Wo ^-fMtt^ 104 |Pjf#S# 204 S>Mfri5H* 

ft® 7 4». IVM(Internet Virtual Machine)^ 4*^3SrW#l#2l^|*f^ 
Web Web ?M2§«#I^ 

*M#jW± Web #fiHHIRftM^*, IR^^*m«^J5l*^Wir 
TM^^^^BJ^f^^®^^^^ SKCC II« 

tm&misKccmm 

1. 

MUfrR (SuperDistribution) Ryochi Mori ^ 1987 



ifBKio m^mnmrnmuu^mmmm^mm, Mori m&T& 

$£! SKCC «S$5Mfe^rt*W^^^|PJifcR^. JSMfMJ*J8W 

4&«FflR#ja (Hardcopy) ^«W»+$*3ER»ja. 



&JI Internet 



3. skcc tTOISl 

skcc W^M^^jKiSft^M^^, -Srt#««-«^*^S 

skcc mimum^mm^mm^mm^ 

-ft. ^M#^$l^ffi^^WWo ftttWRTffiW^RT. 

4. 



nonce *k$,tf}fflflM (Nonce) 



Co 

H (m) #.|pj6<JHashSiiS: 

MAC (m) AfttiK^ttftAiMiE 

A-B: m A#IIm^B 

KC : ^J^MM, 

igoods: %}jMM>'M rm 

Tag: ^WlaHaKHtm 

A: %P 

B: WTCM^H 

C: A#JS4HI» 

Kb, Kb' b wk%m%m 

Ka, Ka' AlUl^lI^ 

Sig k (X) XWft^«* 

nonce £$KfBI#l* (Nonce) 

H (m) JpLfalft Hash aWf^ADiisf 

MAC (m) EijfAffKMimtiMjE, £PHMAC 

A-B: m Aftilm^B 

K(c,k) : ttHIM k Ifrt # c,$q Triple DES, RSA g&, 

D(c,k) ffiffi*<9kjH«rt#c,Jn Triple DES> RSA#T&, 
igoods.content: Mtift&f&rt^ 

igoods.id ^jinMMua^mH 

userjd %pmmm& 

Tag: *^«Uf«fi«l#fJ& 

A: 

B: 

C: A#Jl£-# 

Kb, Kb' Blft&#3«^ 



Kplug,Kplug'B #E&M#«I&0JjBlft$ 



Protocol Content- Authentication Protocol 

( 

C: a=igoods_i.content 
b=igoods_i.id 

kdes_i=nonce ,kmac_i=nonce 

c= K(a,kdes_i) 

d=HMAC(c,kmac_i) 

SecurityData = {b,kdes_i,kmac_i} 

Container = {b,c,d} 
C -» A: Container; 
A: if Verify Container's integrity 
C — B: SecurityData 
} 



//a£ftAittrt$ 
//b*i&fli*iflR 

//$Lf&mmm kug 

kdes_i jjP^ a 
//^fflkmacJiUE;£« 



Protocol License Protocol (A,B) 

{ 

A: inforl={ H(Tag),user_id}; //^^XM^mMPBiR 
ask_mac= {Container.b,infol} 

A -* B:en_ask_mac=K(ask_mac,kb) 

/mmum^mnif^mim ask_mac 

B : ask_mac=D(en_ask_mac,kb') 

mmmm^mmm^o #fijask_mac 

Search SecutityData(ask_mac.Container.b) 

ret_data={kdes_i,kmac_i} 

en_ret_data=K(ret_data,ask_mac.inforl) 



B -*■ A: en_ret_data 
A: Save en_ret_data 

A: //ffiSHKffiffiift i 

infor2=i{ H(Tag),user_id} 
/W^^MM, ^ffi^#E-^n inforl ffiig 
ret_data2=D(en_ret_data,infor2) 
if Verify Container.d integrity success 

i TO* kmac_i ttffi^SEtt 

then 

{ igoods_i.context=D(Container.d,ret_data2.kdes_i) 

Play igoods_i,context; HWsWlM n n n i #J I*) ^ 

} 

else Refuse 

} 

^$H*f*J^ ffliStlP«^^rt§** DPG, DPG 

» 8A 4», jftl si, A rt#JR## c toM 

CPG; S3, &m K2 i^ilE CPG W^SEtt, ffi/S HMAC 

MUdi d = HMAC (CPG, K2); fm S4, &GlMMBiffyfflHtt b, 
iq#tofc&CPG, BUMHAAfc d DPG; #*S5, ft 

MMffy^MM^mmmR^mffymm ki, k2 wii^ b d 

9 8B **;*iUEi*##*tofctg. Bto&££;*#£!l2iq$ftrt& 



£® 8B 3£« 8A mm S5 *fintaT^»: £Si S6, %P # 
SflrtSM** DPG; #rg S7, ffl^iftffirt»»»W^«tti S8, *| 

i$r^M/»; *nm&^ii S8 wmm#m S9 # 

ftl&&2Ni S8 WtfBliW S10 ffittft^RT 

£®8C*. »OT 8B S10 IMfJPT^ili 2HIS11. ^ 

^HffiiS ft & ID, #|E IDC^fcflJg*) BUUB^ ft Pinfo, LPG1 ; 
#«S13, ^ A B W&mDm LPGl LPG2 ; £?3* 

S14, ^ Am LPG2 B: S15, 0fcRflR&3& B ffl 

WA«WLPG2, fcSlLPGl: ^S16, £JKfcJR#* B ±&*&£| 
XJSlP«Fttrt»*»ttWffii ^HS17, MHI^^WnriiE; S18, 

m 8D ft*^tfRTffif3BF*tt«ffl leftists- Btt&JB/'am&ll 
iffi Web W%Mt&mftZ*$&l&--&. 

&S8D+, 8C S19 JMX$(JT^»: ^* S20, 

AJF»ttfflrt*#»Ht, m^#ilJffl^to«#iCNInfo ; ^«S21, * 
^ A ffl§f Ninfo ^*ffi#«jW3FWRTiiE; S22 

JWrt^Mft^tti ftmfciN* S22 *K#il*rgiJlU& "W" j»J^ 
91 S23 *§ft£A##tt$i S22 *to#|»r&j|ifc M 



5. xm»&m*i 

mm®. mftRmmm&m&mmm%&m&&2mmm, -a* 

6. m$&**n*xm\m 

T-mmmT Netscape ll^m^M ft &&&&&& 

imurn skcc as^nas^TJK^wsp^fB. a-^n^ 

^lES*^*. fMmfcJBflW&¥£*£#2F* WindowsNTS.O, 
Apache Web Serverl.3(for Windows)o ^^T3RfflT Windows98 
Internet Explorer5.0, PluginSDK4.0 o MERE 7 & 

£ £M RSA, DESM SHA, HMAC ffl RSA #$£*b3& 

Xt^l&^ilP*. 5£ffl MD5 Hash Mt DES f^AX^Wtf^lP 

Wo 
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( Trusted Environment) 
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m des Jqffi 




ft DES MtflfcSf 8 
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File 










EOF 


Headerl 


Datal 


File Header2 


Data2 




Header 
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DES ffift 
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m^mMMmm. 



flaw** 



i% * id, ffl^ id, m% ID 
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ftM&SC£#GI#lSKl. K2 

mm®-, 




ttffl K2 iAiE CPG M^SEtt, -I 

ffl hmac mmmmm&xm 

d=HMAC (CPG, K2) 



§ cpg. w.Rm^m d 

l*l#&3&DPG, 



rt&mm® ki, K2 m&tffcum 



S 8A 

8 




a 8b 
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Plnfoo 



%P a &^flr&fflftrt# id, $ 

Pinfo, ^LPGlo 



%P A JBJK&J1&# B M 

'AVOWS! LPGl LPG2o 



A m LPG2 



LPG2, f#£ljLPGl 



BE. 



oIvEBjfc LPG3o 



SSL 

lpg3 mmp. 
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Copyright protecting method based on network browser card 
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Abstract of CN1361481 

The digital copyright protecting method controls the right of printing, editing and broadcasting digital 
published matter content via enciphering digital media content and license in network environment and 
including deciphering key. It includes the following steps: forming content container in content server; 
client confirmation of content container; license generation and transmission; and use of the content by 
the client in credible environment. 
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